pem service-chain-endpointΒΆ

pem service-chain-endpoint(1)				BIG-IP TMSH Manual			     pem service-chain-endpoint(1)

NAME
       service-chain-endpoint - Configures service chain endpoints for the Policy Enforcement Manager (PEM).

MODULE
       pem

SYNTAX
       Modify the service-chain-endpoint component within the pem module using the syntax shown in the following sections.

   CREATE/MODIFY
	create service-chain-endpoint [name]
	modify service-chain-endpoint [name]
	  options:
	    app-service [[string] | none]
	    service-endpoints [add | delete | modify | replace-all-with] {
		[service endpoint name ... ] {
		     options:
			 app-service [[string] | none]
			 forwarding-endpoint
			     to-endpoint [forwarding endpoint name]
			 from-vlan [vlan name]
			 http-adapt-service
			     internal-virtual [internal virtual server | none]
			     icap-type [request | response | both | none]
			 order [integer]
			 service-option [optional | mandatory]
			 steering-policy [policy name | none]
		}
	    }

	edit service-chain-endpoint [ [ [name] | [glob] | [regex] ] ... ]
	  options:
	    all-properties
	    non-default-properties

   DISPLAY
	list service-chain-endpoint
	list service-chain-endpoint [ [ [name] | [glob] | [regex] ] ... ]
	show running-config service-chain-endpoint
	show running-config service-chain-endpoint [ [ [name] | [glob] | [regex] ] ... ]
	  options:
	    all-properties
	    non-default-properties
	    one-line
	    partition

   DELETE
	delete service-chain-endpoint [name]

       Note: You must remove all references to a service-chain-endpoint before you can delete the service-chain-endpoint.

DESCRIPTION
       You can use the service-chain-endpoint component to configure service-chain-endpoint definitions for the Policy Enforcement
       Manager (PEM).  Each service-chain-endpoint consists of one or more service-endpoints, where a service-endpoint consists of
       a non-zero integer order, existing from-vlan a valid fwd-endpoint or a http-adaptation-service endpoint.  When you
       configure a BIG-IP that has a service-chain-endpoint with multiple service-endpoints, traffic will pass through different
       endpoints choosen dynamically.

       Note: You must create a valid forwarding-endpoint and a valid vlan before you can create a service-endpoint. If you are
       enabling http-adapt-service, you must create Request Adapt and Response Adapt profiles and attach to the traffic virtual.
       Also create an internal-virtual and enable icap profile.  You must also give each service-endpoint an order from 1 up to
       2^32-1. The lower the service-endpoint order is, the higher its precedence is (i.e., traffic will pass though it before
       other higher order service-endpoints).  Each service-endpoint has a boolean (true/false) service-option that defines what
       would happen if the service-endpoint is down.  If service-option is mandatory, the traffic flow is dropped if the service-
       endpoint is down.  If service-option is optional, the traffic flow will be bypassed to the next available service-endpoint.

       For more information about how to create a vlan, please refer to net vlan.  Also please refer to pem forwarding-endpoint
       for more information about how to create a pem forwarding-endpoint.

EXAMPLES
       create service-chain-endpoint chain1 service-endpoints add { ser_ep1 { order 10 from-vlan vlan1 forwarding-endpoint { to-
       endpoint fw_ep1 } service-option optional } ser_ep2 { order 5 from-vlan vlan2 http-adapt-service {internal-virtual iv1}
       service-option mandatory } }

       Creates a PEM service-chain-endpoint named chain1 that has two service-endpoints: ser_ep1 and ser_ep2. The first ser_ep1
       has an order of 10 and is optional and has forwarding-endpoint with to-endpoint fw_ep1, type transparent and vlan1 as a
       from-vlan. The second ser_ep2 has an order of 5 is mandatory and has http-adapt-service enabled with ivs1 as internal-
       server and vlan2 as a from-vlan. Note that ser_ep2 will precede ser_ep1 because the lower the service-endpoint order is,
       the higher its precedence is.

       delete service-chain-endpoint chain1

       Deletes the service-chain-endpoint named chain1.

       list service-chain-endpoint chain1

       Displays the properties of the service-chain-endpoint named chain1.

OPTIONS
       app-service
	    Specifies the name of the application service to which the object belongs. The default value is none. Note: If the
	    strict-updates option is enabled on the application service that owns the object, you cannot modify or delete the
	    object. Only the application service can modify or delete the object.

       service-endpoints
	    Adds, deletes, or replaces a set of the service endpoints by specifying a series of service-endpoint names. If any of
	    these names did not exist before, then new names will be created.  Each service-endpoint is identified by a vlan and a
	    forwarding-endpoint.

	    app-service
		 Specifies the name of the application service to which the object belongs. The default value is none. Note: If
		 the strict-updates option is enabled on the application service that owns the object, you cannot modify or delete
		 the object. Only the application service can modify or delete the object.

	    forwarding-endpoint
		 Specifies the forwarding endpoint attributes to be set. The below attributes can be set:

		 to-endpoint
		      This is a default endpoint that will be chosen if steering policy is not configured. You have to create a
		      valid PEM forwarding-endpoint before you can add to-endpoint to a service-endpoint.

	    from-vlan
		 Specifies the vlan that the traffic will come from toward the service-endpoint. Note: The vlan has to exist
		 before you can create a from-vlan field.

	    http-adapt-service
		 Specifies the option to set attributes for http adapt services. Below are the attributes that can be set.

		 internal-virtual
		      This is the internal virtual on which icap is enabled. You have to create the internal-virtual and assign
		      icap profile before adding here.

		 icap-type
		      Defines the ICAP adaptation type: request only adaptation, request and response adaptation or both types of
		      adaptations combined.

	    order
		 Specifies the order of the service-endpoint among other service-endpoints. The lower the service-endpoint's order
		 is, the more precedence it has (i.e., the traffic will go through the lowest-ordered service-endpoint first, then
		 through higher order service-endpoint, ... etc.).

	    service-option
		 Specifies the behavior when a service-endpoint is not available (i.e., is down). This option is limited when ICAP
		 is defined as the service-endpoint and will not apply if the ICAP service is unavailable. You can configure the
		 following options:

		 mandatory
		      If the service-endpoint is down, the traffic flow is dropped.

		 optional
		      If the service-endpoint is down, the traffic flow will be bypassed to the next available service-endpoint.

	    steering-policy
		 If the steering policy is configured, the policy is evaluated and if steering is enabled the flow will be steered
		 to the corresponding endpoint.

SEE ALSO
       create, delete, edit, glob, list, modify, pem forwarding-endpoint, pem interception-endpoint, pem listener, pem policy, pem
       profile diameter-endpoint, pem profile spm, pem reporting format-script, pem subscriber, pem subscribers, regex, show, tmsh

COPYRIGHT
       No part of this program may be reproduced or transmitted in any form or by any means, electronic or mechanical, including
       photocopying, recording, or information storage and retrieval systems, for any purpose other than the purchaser's personal
       use, without the express written permission of F5 Networks, Inc.

       F5 Networks and BIG-IP (c) Copyright 2012. All rights reserved.

BIG-IP							    2016-01-07				     pem service-chain-endpoint(1)